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Abstract 


Training  personnel  to  assure  the  secure  development,  sustainment,  and  acquisition  of  software 
code  is  a  national  priority.  However,  in  the  secure  software  domain,  there  is  no  single,  commonly 
accepted  point  of  reference  to  direct  software  assurance  education  and  training.  In  response  to  this 
problem,  the  CERT*  Program  at  Carnegie  Mellon  University’s  Software  Engineering  Institute 
recently  led  the  development  of  a  Master  of  Software  Assurance  (MSwA)  Reference  Curriculum. 
This  report  examines  how  the  recommendations  of  the  MSwA  Reference  Curriculum  might  be 
integrated  into  the  model  curriculum  recommendations  for  a  Master  of  Science  in  Information 
Systems  (MSIS).  This  integration  is  important  because  IS  programs  constitute  a  key  portion  of 
computer  education  programs  in  the  United  States.  The  report  describes  the  content  areas  of  the 
MSIS  curriculum  that  appear  to  be  most  relevant  to  secure  software  assurance  practice.  It  also 
details  the  places  in  the  current  MSIS  curriculum  model  where  recommendations  of  the  MSwA 
Reference  Curriculum  appear  to  fit.  In  addition  the  report  explains  how  those  recommendations 
can  be  integrated  into  a  conventional  MSIS  curriculum  and  provides  an  example  of  an  existing 
MSIS  curriculum  that  embodies  them. 
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1 


Introduction 


1.1  The  Model  Curriculum  and  Guidelines  for  Graduate  Degree  Programs  in 
Information  Systems1 

The  Model  Curriculum  and  Guidelines  for  Graduate  Degree  Programs  in  Information  Systems 
(MSIS)  2006  is  the  latest  product  of  a  project  that  has  been  conducted  for  nearly  40  years  [Gor- 
gone  2006],  Various  organizations  affiliated  with  the  project  have  developed  specifications  for  the 
teaching  of  information  systems  content  in  higher  education,  including  the  Association  for  Infor¬ 
mation  Systems  (AIS)  and  the  Association  for  Computing  Machinery  (ACM).  Both  of  these  or¬ 
ganizations  represent  a  significant  constituency  in  professional  computing. 

The  AIS  and  ACM  are  global  in  their  scope  and  incorporate  contributions  from  both  the  profes¬ 
sional  and  academic  computing  communities.  The  AIS,  which  was  organized  in  1 994,  comprises 
faculty  members  in  information  systems  (IS).  The  most  recent  MSIS  curriculum  produced  by  AIS, 
MSIS  2006,  presents  a  model  curriculum  for  graduate  degree  education  in  information  systems  at 
the  master’s  level.  Given  the  typical  placement  of  IS  programs  in  business  schools,  it  needs  to  be 
understood  that  MSIS  2006  contains  recommendations  for  an  entire  curriculum,  not  a  concentra¬ 
tion  or  option  in  an  MBA  program.  In  that  respect,  the  sponsoring  associations  and  the  academic 
community  generally  agree  that  the  MSIS  2006  curricular  recommendations  define  the  knowledge 
and  skills  required  for  IS  professionals  [Gorgone  2006], 

The  recommendations  in  MSIS  2006  can  serve  as  a  guideline  from  which  individual  institutions 
can  tailor  their  own  curriculum.  The  sponsoring  associations  do  not  expect  that  each  institution 
will  follow  the  model  curriculum  precisely.  Instead  the  MSIS  2006  recommendations  are  meant  to 
facilitate  the  creation  of  a  comprehensive  master’s  level  IS  program.  In  addition  to  recommenda¬ 
tions  about  the  curricular  framework  and  general  content,  MSIS  2006  also  provides  specific  ex¬ 
amples  of  content  for  each  course.  At  this  point,  over  200  master’s  degree  programs  worldwide 
utilize  the  recommendations  of  MSIS  2006. 

The  sponsoring  associations  of  the  MSIS  2006  all  accept  that  no  single  IS  degree  program  can 
present  every  fact  or  every  process  that  graduates  might  need.  Moreover  given  the  rapid  develop¬ 
ment  of  technology,  university-level  IS  curricula  need  to  be  frequently  updated  to  remain  effec¬ 
tive.  Therefore  MSIS  2006  recommends  a  basic  and  coherent  set  of  fundamental  concepts  that 
will  undergird  productive  professional  work  and  provide  a  basis  for  lifelong  learning. 

According  to  the  sponsoring  organizations  of  MSIS  2006,  when  universities  and  other  graduate- 
level  educational  institutions  develop  curricula,  they  normally  incorporate  four  considerations 
[Gorgone  2006] : 

•  the  common  body  of  knowledge  (CBK)  that  a  graduate  is  expected  to  know.  (The  aim  of  the 
CBK  is  to  counter  local  requirements  bias  and  help  prepare  graduates  for  positions  in  other 
geographic  areas.) 

•  a  program  structure  with  suggested  courses  and  course  sequences 


Much  of  this  section  is  summarized  from  Gorgone  and  associates  [Gorgone  2006], 
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•  the  practical  rationale  and  required  resources  for  the  program 

•  the  practical  rationale  for  the  required  investment  to  keep  faculty  members  up  to  date  with 
rapidly  changing  technology  and  management  approaches 

Accounting  for  these  considerations  helps  ensure  that  an  institution’s  individual  courses  of  study 
are  relevant  to  the  industry  that  its  students  are  preparing  to  enter.  Demonstrating  compliance  with 
a  set  of  such  recommendations  assures  students  and  the  public  that  the  program’s  curricula  meet  a 
minimum  standard.  The  existence  of  a  single,  commonly  acknowledged  reference  curriculum  is  a 
valuable  means  of  documenting  public  accountability  and  continued  program  quality  [Impagliaz- 
zo  2002]. 

The  public  in  general,  and  students  in  particular,  want  to  know  that  their  course  of  study  sub¬ 
scribes  to  the  commonly  accepted  best  practices  for  the  profession.  Programs  that  can  demonstrate 
compatibility  with  those  practices  will  probably  increase  their  degree’s  value  in  the  marketplace. 
Thus  institutions  of  higher  education  must  document  compliance  with  the  principles  embodied  in 
a  general  curriculum  standard  to  prove  that  they  have  met  the  learning  requirements  for  a  given 
profession.  The  recommendations  of  the  MSIS  2006  can  represent  a  single,  authoritative  basis  for 
such  compliance  documentation.  Moreover  those  recommendations  become  the  single  point  of 
entry  to  ensure  the  widespread  teaching  of  software  assurance  content  in  IS  programs. 

1.2  Why  Software  Assurance  Is  Important 

Since  9/11,  the  U.S.  government  has  been  extremely  interested  in  substantive  measures  to  ensure 
the  integrity  of  the  national  infrastructure.  Yet  it  is  well  documented  that  the  “Commonly  used 
software  engineering  practices  [within  that  infrastructure]  permit  dangerous  defects”  [Goertzel 

2007] .  This  is  the  case  because  “commercial  software  engineering  lacks  the  rigorous  controls 
needed  to  [ensure  defect-free]  products  at  acceptable  cost”  [PITAC  2005].  As  a  result,  the  Nation¬ 
al  Strategy  to  Secure  Cyberspace  contains  a  specific  priority  to  create  a  national  cyberspace 
awareness  and  training  program  [DHS  2003]. 

That  priority  recognizes  two  of  the  barriers  to  the  improvement  of  cybersecurity  as  “a  lack  of  fa¬ 
miliarity,  knowledge,  and  understanding  of  the  issues”  and  “an  inability  to  find  sufficient  numbers 
of  adequately  trained  ...  personnel  to  create  and  manage  secure  systems”  [DHS  2003].  One  of  the 
priority’s  major  initiatives  is  to  “foster  adequate  training  and  education  programs  to  support  the 
Nation’s  cybersecurity  needs”  [DHS  2003].  In  order  to  support  this  goal,  we  need  to  guarantee 
that  software  assurance  practices  are  integrated  into  the  day-to-day  activities  of  the  overall  work¬ 
force  [Mead  2008], 

Although  we  know  how  to  assure  the  secure  development,  sustainment,  and  acquisition  of  soft¬ 
ware  code,  software  assurance  knowledge  is  not  making  its  way  into  the  profession  in  any  orga¬ 
nized  fashion.  The  dilemma  with  software  assurance  is  that  its  knowledge  elements  appear  to  cut 
across  many  disciplines,  rather  than  being  focused  in  a  few.  In  essence,  the  knowledge  base  for 
software  assurance  spans  a  range  of  traditional  studies  [Mead  2008].  These  include  such  dissimi¬ 
lar  areas  as  “software  engineering,  systems  engineering,  information  systems  security  engineer¬ 
ing,  safety,  security,  testing,  information  assurance,  law  and  project  management”  [Redwine 

2008] ,  Consequently,  potentially  meaningful  software  assurance  content  appears  in  many  differ¬ 
ent  places,  and  educators  in  conventional  settings  teach  it  in  many  different  ways  [Redwine  2006]. 
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These  settings — formally  constituted  education,  training,  and  awareness  programs — are  the  tradi¬ 
tional  means  of  disseminating  new  knowledge  [Mead  2008,  Bishop  2006].  Dissemination  is  im¬ 
portant.  The  National  Strategy  recognizes  this  fact  in  Action  Recommendation  2-14,  which  states 
that  “DHS  will  facilitate  a  national  public-private  effort  to  promulgate  best  practices  and  metho¬ 
dologies  that  promote  integrity,  security,  and  reliability  in  software  code  development,  including 
processes  and  procedures  that  diminish  the  possibilities  of  erroneous  code,  malicious  code,  or  trap 
doors  that  could  be  introduced  during  development.”  [DHS  2003],  In  the  secure  software  domain, 
however,  there  is  no  single,  commonly  accepted  point  of  reference  to  “guide  the  development  and 
integration  [into  curricula]  of  education  and  training  content  relevant  to  software  assurance” 
[Redwine  2008],  It  is  clearly  unacceptable  to  approach  the  teaching  and  learning  process  without 
such  a  reference  point.  For  that  reason,  the  software  community  generally  recognizes  that  it  is 
important  to  provide  a  consolidated  view  of  the  body  of  knowledge  for  secure  software  assurance 
[Mead  2008,  Redwine  2008,  Bishop  2006,  PITAC  2005], 

The  CERT  program  at  the  Software  Engineering  Institute  (SEI)  at  Carnegie  Mellon  University 
recently  led  an  important  part  of  this  effort:  the  organized  development  of  a  software  assurance 
reference  curriculum.  The  curriculum  development  team  included  technical  staff  from  the  SEI  and 
faculty  from  a  number  of  universities,  both  domestic  and  international  [Mead  2010].  The  in¬ 
volvement  of  the  SEI  is  particularly  important  because  much  of  the  body  of  knowledge  in  secure 
software  assurance  is  derived  from  software  engineering  principles  and  practices  [Redwine  2008, 
Redwine  2006,  Abran  2004].  The  SEI  is  generally  recognized  as  the  preeminent  source  of  new 
knowledge  in  this  field.  The  Software  Assurance  Reference  Curriculum  Project  developed  at  the 
SEI  specifies  an  authoritative  curricular  framework,  inherent  topics,  and  the  prerequisite  know¬ 
ledge  and  skills  to  ensure  a  properly  educated  software  assurance  professional  [Mead  2010], 

One  of  the  outcomes  of  this  project  was  the  report  Software  Assurance  Curriculum  Project  Vo¬ 
lume  I:  Master  of  Software  Assurance  Reference  Curriculum  [Mead  2010],  ft  contains  the  refer¬ 
ence  curriculum,  a  glossary  of  terms,  and  the  guidelines  used  to  develop  the  curriculum,  prerequi¬ 
sites,  proposed  outcomes,  architecture,  proposed  curricular  body  of  knowledge,  and 
implementation  considerations.  A  number  of  existing  artifacts,  including  Software  Assurance:  A 
Curriculum  Guide  to  the  Common  Body  of  Knowledge  [Redwine  2008],  the  recent  Graduate 
Software  Engineering  curriculum  guidelines  [SIT  2009],  and  the  older  SCI  Reports  on  Graduate 
Software  Engineering  Education  [Ford  1991,  Ardis  1989].  The  project  team  also  referenced  the 
Guide  to  the  Software  Engineering  Common  Body  of  Knowledge  [Abran  2004]  as  needed  to  cross- 
reference  the  team’s  recommendations  with  the  software  engineering  knowledge  fundamental  to 
software  assurance.  The  Master  of  Software  Assurance  (MSwA)  Reference  Curriculum  report 
recommends  the  following  core  body  of  knowledge  (Table  1): 
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Table  1:  MSwA  Core  Body  of  Knowledge  [Mead  2010] 
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2  MSIS  2006  and  the  MSwA  Reference  Curriculum 


Establishment  of  a  new  degree  program  is  a  very  ambitious  undertaking.  It  is  worthwhile  to  con¬ 
sider  how  the  recommendations  of  the  MSwA  Reference  Curriculum  might  be  integrated  into  the 
model  curriculum  recommendations  for  a  Master  of  Science  in  Information  Systems  (MSIS)  cur¬ 
riculum  [Gorgone  2006].  Because  IS  programs  constitute  a  key  proportion  of  the  computer  educa¬ 
tion  programs  in  the  United  States,  it  is  important  to  be  able  to  integrate  the  recommendations  of 
the  MSwA  Reference  Curriculum  into  the  teaching  of  conventional  topics  in  the  IS  discipline. 

The  IS  programs  in  higher  education  have  tended  to  be  located  in  colleges  of  business  rather  than 
engineering  or  computer  science  schools.  That  is  because  the  discipline  evolved  in  the  1970s  out 
of  the  emerging  needs  of  business  for  computerized  management  information  [Banker  2004]. 
Consequently  the  discipline’s  body  of  knowledge  is  most  applicable  to  pragmatic  business  needs 
rather  than  the  study  of  computer  functioning  itself,  which  is  the  domain  of  the  more  scientific 
fields  such  as  computer  science  and  software  engineering  [Banker  2004].  The  pragmatic  ties  of  IS 
programs  to  business  have  caused  them  to  produce  the  bulk  of  the  information  technology  (IT) 
workforce,  and  the  field  itself  is  growing  at  a  higher  rate  than  the  “average  for  all  occupations” 
[Bureau  of  Labor  Statistics  2009]. 

The  purpose  of  this  section  of  the  report  is  to  provide  the  adaptation  of  the  MSwA  Reference  Cur¬ 
riculum  into  the  teaching  of  conventional  topics  in  the  IS  discipline.  This  report  will  describe  the 
content  focus  of  the  areas  of  the  MSIS  curriculum  that  appear  to  be  the  most  relevant  to  secure 
software  assurance  practice.  It  will  detail  the  places  in  the  current  MSIS  curriculum  model  where 
the  recommendations  of  the  MSwA  appear  to  fit.  It  will  present  a  picture  of  how  those  recom¬ 
mendations  can  be  integrated  into  a  conventional  MSIS  curriculum.  Finally  it  will  present  an  ex¬ 
ample  of  an  existing  MSIS  curriculum  that  has  embodied  those  recommendations. 

2.1  Comparison  of  MSIS  to  MSwA  Recommendations 

Table  2  summarizes  the  comparison  between  the  recommendations  of  MSIS  2006  and  the  rec¬ 
ommendations  of  the  MSwA  Reference  Curriculum. 


Table  2:  Comparison  of  Content  Areas 


MSwA  Recommendations 

Comparable  MSIS  Recommendations 

Assurance  Across  Life  Cycles 

Project  and  Change  Management  Fundamentals  of  IS 

Risk  Management 

Analysis,  Modeling,  and  Design 

Assurance  Assessment 

Programming,  Data,  File,  and  Object  Structures 

Assurance  Management 

Enterprise  Models  Policy  and  Strategy 

System  Functionality  Assurance 

Not  Applicable 

System  Operational  Assurance 

Not  Applicable 

There  are  two  general  points  of  difference  that  appear  to  cause  the  greatest  divergence  between 
the  two  models. 

The  first  difference  is  between  the  prerequisite  requirements.  The  MSwA  Reference  Curriculum 
has  a  rigorous  set  of  prerequisite  requirements  that  are  characteristic  of  study  in  engineering  and 
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science.  The  prerequisites  are  divided  into  three  categories:  computing  foundations  (discrete  ma¬ 
thematics,  computing  fundamentals,  networks  and  communications,  programming  environments, 
and  program  development),  software  engineering  (software  development  life  cycle,  software  ana¬ 
lytics),  and  security  engineering  (security  issues).  The  MSIS,  on  the  other  hand,  has  a  clear  busi¬ 
ness  orientation.  Its  prerequisites  fall  into  six  general  areas:  the  common  body  of  knowledge  for 
business  (CBB),  finite  mathematics,  elementary  statistics,  elementary  computer  programming, 
elementary  economics,  and  elementary  psychology.  The  mismatch  between  the  purposes  of  these 
two  curricular  models  is  clear. 

The  second  area  of  difference  is  the  expected  outcomes.  Graduates  of  a  program  that  is  based  on 
the  recommendations  of  MSIS  2006  are  expected  to  have  general  management  and  technology 
knowledge  that  includes  the  following  abilities: 

•  integrate  IS  and  business  foundations 

•  maintain  a  broad  business  and  real-world  perspective 

•  exhibit  communication,  interpersonal,  and  team  skills 

•  exhibit  analytical  and  critical  thinking  skills 

•  exhibit  specific  skills  leading  to  a  career 

Graduates  from  the  MSwA  curriculum  are  expected  to  be  able  to  perform  the  following  seven 
activities: 

•  assurance  across  the  life  cycle 

•  risk  management 

•  assurance  assessment 

•  assurance  management 

•  system  security  assurance 

•  system  functionality  assurance 

•  system  operational  assurance 
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3  Detailed  Integration  of  MSwA  and  MSIS  Content  Areas 


This  section  presents  the  possible  points  of  integration  for  the  two  reference  models.  The  sug¬ 
gested  points  of  integration  will  be  generally  structured  by  the  MSwA  content  areas,  using  the 
specific  content  recommendations  of  the  MSIS  to  detail  the  potential  curricular  locations.  This 
section  is  taken  directly  from  the  MSIS  course  descriptions  for  this  content  area;  the  frill  text  is 
available  in  MSIS  2006  [Gorgone  2006] .  Discussion  sections  in  brackets  are  suggestions  by  the 
authors  of  this  report  and  are  not  part  of  MSIS  2006. 

3.1  MSwA  Content  Area  One  -  Assurance  Across  Life  Cycles 

Analogous  MSIS  Content  Area:  MSIS2006.5  Project  and  Change  Management 

Prerequisite:  IS  2002.1  Fundamentals  of  Information  Systems  (undergraduate) 

Catalog  Description  MSIS2006.5  Project  and  Change  Management: 

Managing  projects  within  an  organizational  context,  including  the  processes  related  to  in¬ 
itiating,  planning,  executing,  controlling,  reporting,  and  closing  a  project.  Project  integra¬ 
tion,  scope,  time,  cost,  quality  control,  and  risk  management.  Software  size  and  cost  estima¬ 
tion.  Assigning  work  to  programmer  and  other  teams.  Monitoring  progress.  Version  control. 
Managing  the  organizational  change  process.  Identifying  project  champions,  working  with 
user  teams,  training,  and  documentation.  The  change  management  role  of  the  IS  specialist. 
The  use  of  sourcing  and  external  procurement;  contracts  and  managing  partner  relation¬ 
ships. 

MSIS  Objectives: 

Students  develop  detailed  project  plans,  schedules,  and  budgets;  estimate  project  resources; 
allocate/coordinate  resources;  and  interface  with  management.  They  are  expected  to  learn 
tools  and  techniques  of  project  planning  and  management,  including  the  use  of  project  man¬ 
agement  software.  The  course  develops  skills  in  the  human  and  organizational  implications 
of  change  including  understanding  the  organizational  change  process;  identifying  stake¬ 
holders;  assessing  potential  impacts  of  projects;  and  overcoming  resistance,  politics,  and 
other  human  issues. 

Detailed  Topic  List: 

•  Managing  software  /  technology  projects: 

Project  lifecycle 
Project  stakeholders 

Project  management  skills  (leading,  communicating,  negotiating,  influencing,  and 
presenting) 

Project  planning  (definition,  scope,  schedule,  costs,  quality,  resources,  and  risks) 

Estimating  software  size  and  cost 

Software  work  module  design,  assignment,  and  control. 

Role  of  repository,  project  library,  and  version  control 
Contingency  planning 
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Project  reporting  and  controls  (definition,  scope,  schedule,  costs,  quality,  re¬ 
sources,  and  risks), 

Testing  and  testing  plans;  alpha  and  beta. 

•  Managing  organization  change 

The  role  of  IS  specialists  as  change  agents 
Envision  change  and  the  change  process 
Diagnose  and  conceptualize  change 

Deal  with  the  challenges  of  implementation  and  understand  and  cope  with  resis¬ 
tance 

Deal  with  issues  of  motivation,  interpersonal  relations,  group/team  dynamics,  and 
leadership  in  the  change  process;  implications  of  cross-organization  and  interna¬ 
tional  teams. 

Manage  organizational  politics 

The  limitations  of  projects  as  organizational  change  initiatives 
Organizational  influences  on  project  success  (culture,  organizational  structure,  re¬ 
wards,  and  measures) 

Software  project  management  resources  and  professional  development  such  as  SMI 
and  PMI. 

Additional  activities  required  to  ensure  the  success  of  IT  projects  (training,  job  re¬ 
design,  communication,  etc.) 

Manage  sourcing  partners  as  well  as  define  contract  and  relationships 
Hands-on  experience  using  project  management  software  (e.g.  Microsoft  Project) 

Discussion: 

Context  of  the  course  in  the  total  curriculum:  This  course  introduces  two  major,  related  top¬ 
ics  into  the  required  portion  of  the  MS  program:  project  management  and  change  manage¬ 
ment.  MS  degree  holders  in  information  systems  will  inevitably  be  involved  in  the  manage¬ 
ment  of  IS  projects  and,  as  a  result,  in  the  management  of  the  changes  that  projects 
introduce.  This  course  is  fundamental  to  almost  all  career  tracks  and  essential  for  students 
who  undertake  a  practicum. 

Philosophy  underlying  the  selection  of  topics:  Most  information  systems  work  is  organized 
as  a  project  rather  than  being  department  or  function  oriented.  Therefore,  it  is  essential  for 
IS  specialists  to  know  how  to  manage  projects  effectively.  But  good  project  management 
alone  is  not  sufficient  to  ensure  organizational  success  with  information  systems.  Work  in 
this  environment  is  a  series  of  projects,  which  are  conceived,  staffed,  completed,  and  shut 
down.  Although  IS  projects  are  among  the  most  challenging,  being  able  to  plan  and  manage 
any  business  project  is  an  increasingly  important  and  marketable  skill.  [Given  the  end-to- 
end  relationship  between  project  management  and  the  software  development  life  cycle,  this 
is  the  course  where  content  related  to  assurance  across  the  life  cycle  would  best  fit.]  This 
course  examines  the  roles,  responsibilities,  tools,  and  techniques  for  effective  project  man¬ 
agement.  A  blend  of  theory  and  practice,  the  course  addresses  project  organization,  project 
planning,  project  execution,  and  project  control.  Some  of  the  topics  in  project  management 
section  were  selected  from  the  Project  Management  Institute ’s  “Project  Management  Body 
of  Knowledge.  ”  ...  Other  topics  relate  more  closely  to  software  engineering. 

Research  shows  that  projects  are  a  rather  risky  (i.e.,  failure-prone)  way  of  attempting  to 
create  organization  change.  Therefore,  IS  specialists  must  understand  and  be  able  to  apply 
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alternative  ways  of  bringing  about  organization  change,  such  as  dealing  with  organizational 
politics  and  designing  systems  that  are  culturally  compatible.  Further,  organizational  suc¬ 
cess  with  information  systems  usually  requires  the  fulfillment  of  activities  that  are  not  always 
performed  by  IS  specialists,  such  as  job  retraining  and  the  development  of  new  measurement 
and  reward  systems.  IS  specialists  must  understand  what  needs  to  get  done  and  how  to  work 
with  other  specialists  to  ensure  that  these  essential  tasks  are  completed. 

One  way  to  frame  the  course  is  to  look  at  project  and  change  management  as  the  integration 
of  technical,  cultural,  and  political  dynamics  and  interactions,  drawing  out  more  explicitly 
the  critical  role  of  broader  human,  cultural,  and  political  factors  in  the  change  process. 

[This  orientation  will  enhance  the  ability  to  introduce  Assurance  Across  Life  Cycles  topics 
directly  into  the  day-to-day  teaching  process.] 

3.2  MSwA  Content  Area  Two  -  Risk  Management 

Analogous  MSIS  Content  Area:  MSIS2006.8  Implications  of  Digitization 

Catalog  Description  MSIS2006.8: 

Understanding  of  the  implications  of  the  digitization  of  data,  information,  and  communica¬ 
tions  on  organizations  and  society.  These  implications  are  examined  in  regard  to  ethical  is¬ 
sues  such  as  information  privacy,  accessibility,  property,  and  accuracy.  The  proliferation  of 
computer  crime  as  well  as  the  legal  and  regulatory  environment  is  examined.  The  ramifica¬ 
tions  of  digitization  as  they  affect  individuals,  organizations,  and  society.  The  impacts  of 
globalization,  sourcing,  technology  workforce,  and  the  digital  divide  are  examined. 

MSIS  Objectives: 

Students  gain  a  thorough  understanding  of  the  influence  of  increasing  digitization  on  organ¬ 
izations  and  society.  Digitization  of  information  and  the  proliferation  of  global  wired  and 
wireless  networks  are  enabling  new  relationships  among  organizations ,  new  threats,  and 
new  ways  of  working.  Students  will  examine  the  characteristics  of  the  information  age  and 
explore  the  implications  of  emerging  ethical  concerns  such  as  information  privacy,  accura¬ 
cy,  property,  and  accessibility.  Students  will  also  examine  what  constitutes  a  safe  digital  en¬ 
vironment. 

Detailed  Topic  List: 

•  Information  systems  ethics; 

Ethical  issues  related  to  information  privacy,  accessibility,  properly,  and  accuracy. 
Employee  monitoring  and  acceptable  use  policies. 

Internet  enabled  vices  and  the  good  of  society. 

Important  laws,  regulations,  compliance,  and  treaties  including:  Sarbanes-Oxley 
Act;  Computer  Fraud  and  Abuse  Act,  Electronic  Communications  Privacy  Act, 
Identity  Theft  and  Assumption  Deterrence  Act,  Homeland  Security  Act;  U.S. 
PATRIOT  Act. 

Ethical  guidelines  for  computing  professionals. 

Ethical  issues  related  to  data  retrieval  and  data  mining. 

Globalization  and  sourcing 

Copyright  and  intellectual  properly  infringements,  the  role  of  peer-to-peer  net¬ 
works 

Mobility,  virtualiza  tion,  and  privacy 
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Blogging  and  the  media 
•  Security 

How  information  is  compromised  including  unauthorized  access,  information  mod¬ 
ification,  denial  of  service,  and  viruses. 

Computer  crime,  cyberterrorism,  and  cyberwar. 

Computer  viruses,  worms,  Trojan  horses. 

Internet  fraud,  hoaxes  and  urban  legends. 

Spam,  adware,  and  spIM. 

Identity  theft  and  cybersquatting. 

Computer  security  measures  including  technological  (physical  access  restraints, 
firewalls,  encryption,  and  audit  controls)  and  human  approaches  (legal,  effective 
management,  ethics). 

Computer  security  planning  including  risk  assessment,  policy  development,  imple¬ 
mentation,  training,  and  auditing. 


Discussion: 

As  computing  technology  and  digitization  continues  to  proliferate  throughout  organizations 
and  society,  new  issues  of  legality  and  ethical  behavior  have  emerged.  Since  laws  don ’t  de¬ 
fine  ethical  behavior,  but  simply  provide  societal  guidelines  for  acceptable  behavior,  a  care¬ 
ful  examination  of  the  role  of  digital  technologies  in  shaping  ethical  behavior  is  warranted. 

In  addition  to  ethical  issues,  the  proliferation  of  digital  technologies  often  creates  unforeseen 
legal  dilemmas  that  existing  laws  do  not  sufficiently  cover.  An  examination  of  current  laws, 
regulations,  and  treaties  provides  a  foundation  for  understanding  the  fuzzy  boundary  be¬ 
tween  legal  and  ethical  behavior. 

The  proliferation  of  digital  technologies  throughout  society  has  enabled  a  plethora  of  beha¬ 
viors  that  are  shaping  future  business  environments.  A  careful  examination  of  various  topics 
including  intellectual  property  issues,  computer  crime  -  including  viruses,  fraud,  and  hoax¬ 
es,  technology  annoyances  -  including  spam,  spyware,  cookies,  and  spIM,  employee  moni¬ 
toring,  globalization,  identity  theft,  cyberwar  and  terrorism,  and  numerous  others  should  be 
explored.  Once  a  clear  understanding  of  broader  organizational  and  societal  implications 
are  explored,  professional  codes  of  conduct  as  well  as  defining  organizational  policies  for 
acceptable  use  should  be  examined.  [Given  the  direct  orientation  of  this  course  toward  threat 
and  threat  understanding,  the  unique  issues  associated  with  software  assurance  risk,  includ¬ 
ing  defects,  exploits,  and  remediations,  can  be  specifically  introduced  into  the  learning 
process.] 

3.3  MSwA  Content  Area  Three  -  Assurance  Assessment 

Analogous  MSIS  Content  Area:  MSIS2006.2  Analysis,  Modeling  and  Design 
Catalog  Description  MSIS2006.2: 

Systems  development  life  cycle;  analysis  and  design  techniques;  information  systems  plan¬ 
ning  and  project  identification  and  selection,  requirements  collection  and  structuring, 
process  modeling,  conceptual  and  logical  data  modeling,  database  implementation,  design 
of  the  human-computer  interface  and  data  management,  design  of  the  human  computer  inter¬ 
face  (HCI)  System  implementation  and  operation,  system  maintenance,  and  change  man¬ 
agement  implications  of  systems. 
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Students  will  use  current  methods  and  tools  such  as  rapid  application  development,  object- 
oriented  analysis  and  design,  prototyping,  and  visual  development. 

MSIS  Objectives: 

This  course  provides  an  understanding  and  application  of  system  analysis  and  design 
processes.  Students  evaluate  and  choose  appropriate  system  development  methodologies  and 
design  a  system.  Students  learn  the  importance  of  effective  communication  and  integration 
with  users  and  user  systems.  The  course  emphasizes  interpersonal  skill  development  with 
clients,  users,  team  members,  and  others  associated  with  development,  operation,  and  main¬ 
tenance  of  systems. 

Detailed  Topic  List: 

•  Systems  development  methodologies  including  life  cycle  and  iterative  design  models;  de¬ 
velopment  phases  including  systems  selection  and  planning,  analysis,  logical  design, 
physical  design,  implementation  and  operation,  maintenance 

•  Techniques  for  requirements  determination,  collection,  and  organization  (question¬ 
naires,  interviewing,  document  analysis,  observation) ;  joint  application  design  (JAD) 
and  other  group  approaches  (e.g.,  electronic  JAD,  computer  conferencing) ;  prototyping 

•  Team  organization  and  communication;  interviewing,  presentation  design,  and  delivery; 
group  dynamics;  and  leadership 

•  Project  feasibility  assessment  and  risk  analysis 

•  Design  reviews  and  structured  walkthroughs 

•  Systems  development  life  cycle;  object-oriented  analysis  and  design;  Rapid  Application 
Development  (RAD);  eXtreme  programming;  prototyping 

•  Core  UML  diagrams;  principles  underlying  the  widely  used  object-oriented  process 
models. 

•  Data  organization  and  design:  conceptual  data  modeling;  logical  data  modeling  using 
relational  technologies;  database  definition  and  manipulation  using  SQL 

•  Human-Computer  Interaction  design  (depth  of  focus  will  depend  on  how  overall  curri¬ 
culum  is  implemented  —  see  MSIS  2006.9 for  key  topics) 

•  Software  and  system  quality  metrics 

•  Application  categories 

•  Software  package  evaluation  and  acquisition,  open  source,  managing  external  relation¬ 
ships  and  procurement. 

Discussion: 

Context  of  the  course  in  the  total  curriculum:  The  analysis  of  an  organization  —  its  users, 
data,  and  business  processes  —  and  the  subsequent  design  of  computer  systems  to  meet 
business  requirements  is  at  the  heart  of  the  information  systems  field.  Understanding  the 
processes  and  techniques  used  to  design  and  implement  information  systems  is  fundamental 
to  managing  —  identifying,  analyzing,  designing,  implementing,  operating,  and  evolving  — 
technical  resources  within  an  organization.  This  course  provides  conceptual  understanding 
of  “where  systems  come  from  ’’  and  practical  knowledge  for  managing  the  system  develop¬ 
ment  process. 
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Philosophy  in  the  selection  of  topics:  In  the  analysis,  modeling,  and  design  of  both  large  and 
small  information  systems,  it  is  typical  that  multiple  individuals  participate  in  the  process.  It 
is  common  that  analysts  work  with  users,  managers,  and  other  analysts  to  design  the  system 
while  also  working  with  technical  specialists  and  vendors  to  implement  the  required  designs. 
[Given  the  MSIS  orientation  toward  management  data  and  quantitative  analysis,  the  content 
related  to  assurance  assessment  would  provide  a  value-added  fit  with  the  more  business- 
oriented  quality  assurance  processes.]  Effective  communication  is  at  the  heart  of  a  successful 
information  systems  project.  To  communicate  effectively,  a  structured  and  disciplined  ap¬ 
proach  to  the  systems  analysis  and  design  process  is  required. 

Systems  design  and  development  is  firmly  rooted  in  an  organizational  context —  it  is  not 
merely  a  “technical”  or  “computer”  activity,  but  a  “business”  activity.  Success  requires  not 
only  skill  in  system  methodologies  and  techniques,  but  also  in  the  management  of  people  and 
projects.  At  a  very  fundamental  level,  the  design  and  development  of  organizational  informa¬ 
tion  systems  involves  solving  problems  and  communicating  problem  diagnoses  and  solutions 
to  others  in  a  wide  range  of  forums  and  media.  Applying  the  methods,  techniques,  and  tools 
used  to  determine  information  requirements,  and  to  document  these  requirements  in  a  tho¬ 
rough  and  unambiguous  form,  is  fundamental  to  the  success  of  the  project. 

In  recent  years,  the  object-oriented  approach  gained  the  status  of  a  de  facto  standard  that 
can  be  used  during  all  phases  of  the  systems  development  life  cycle  from  business  process 
modeling  to  coding.  [Because  of  the  importance  in  this  course  of  objective  information  that 
is  quantitatively  derived,  the  content  of  the  MSwA  Assurance  Assessment  topic  area  would 
appear  to  be  an  important,  value-added  area  of  special  interest  here.] 

3.4  MSwA  Content  Area  Four  -  Assurance  Management 
Analogous  MSIS  Content  Area:  MSIS2006.3  Enterprise  Models 
Catalog  Description  MSIS2006.3: 

Provides  a  process-oriented  view  of  the  organization  and  its  relationships  with  suppliers, 
customers,  and  competitors:  processes  as  vehicles  for  achieving  strategic  objectives  and 
transforming  the  organization;  process  analysis,  design,  implementation,  control  and  moni¬ 
toring;  processes  as  a  means  of  achieving  compliance;  impact  on  work;  the  role  of  enter¬ 
prise  resource  planning  (ERP),  supply  chain  management  (SCM),  and  customer  relationship 
management  (CRM)  systems.  The  process  continuum:  from  structured  to  unstructured 
processes:  Impact  on  work  practices:  The  role  of  systems  in  transforming  organizations  and 
markets;  global  perspectives. 

MSIS  Objectives: 

Students  learn:  how  to  evaluate  and  understand  the  role  of  processes  in  a  competitive  envi¬ 
ronment;  how  processes  integrate  the  internal  functions  of  the  firm  and  allow  the  firm  to  in¬ 
teract  with  its  environment.  They  are  able  to  recognize,  model,  and  improve  processes  to 
achieve  efficiency  and  compliance  objectives.  They  understand  the  role  of  ERP,  SCM,  and 
CRM  systems  as  components  of  the  enterprise  architecture;  the  impact  of  automation  on 
work  practices;  unstructured  collaborative  and  knowledge  management  processes. 

Detailed  Topic  List: 

•  A  strategic  view  of processes;  concepts  of  organizational  efficiency  and  effectiveness 

•  Integrating  the  functional  areas  of  the  organization 

•  Relating  processes  to  the  financial,  customer,  and  product-oriented  goals  of  the  firm 
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•  Process  innovation:  analysis,  modeling  and  simulation 

•  Business  process  automation 

•  Using  Activity  Diagrams  and  Business  Process  Modeling  Notation  (BPMN)  for  business 
process  modeling 

•  Business  Process  Modeling  tools 

•  Job  redesign;  impacts  of  automation  on  work  practices 

•  Achieving  security  and  process  compliance 

•  Monitoring  and  con  trolling  processes 

•  Supply  chain  management  (SCM) 

•  Customer  relationship  management  CRM) 

•  Enterprise  management  systems  (ERP) 

•  The  process  continuum:  from  structured  to  unstructured  processes 

•  Collaborative  systems 

•  Knowledge  management  systems 

•  Processes  that  span  the  world;  global  virtual  markets. 

Discussion: 

The  evolution  of  information  systems  can  be  seen  as  a  progression  of  concerns  and  compe¬ 
tencies  involving  systems  of  ever  increasing  scope  and  complexity.  In  the  early  days,  IS  fo¬ 
cused  on  individual  programs  and  files;  databases  were  introduced  to  integrate  scattered 
and  redundant  files  and  to  manage  the  data  resources  of  the  organization;  workflow  man¬ 
agement  and  ERP  systems  were  introduced  to  integrate  the  functional  applications  and  their 
data,  thus  expanding  the  scope  of  IS  to  the  total  organizational  system;  supply  chain  man¬ 
agement  and  customer  relationship  management  systems  increased  the  scope  further  to  a 
distributed  network  of  organizations  and  individuals;  finally,  the  forces  of  globalization  and 
sourcing  expand  the  focus  of  IS  to  global  networks  that  operate  24x7  and  unite  organizations 
and  workers  around  the  world  into  a  virtual  system  of  systems  that  has  vast  economic  and 
geopolitical  impacts  that  are  beyond  current  understanding.  [Given  this  orientation,  it  would 
seem  that  the  content  of  the  MSwA  curriculum  would  be  an  extremely  valuable  building 
block  that  could  potentially  add  much  more  in-depth  substance  to  the  current  topic.  In  addi¬ 
tion,  the  global  orientation  of  the  MSIS  content  area  toward  real-world  practice  might  be 
something  the  MSwA  curriculum  designers  should  consider  for  their  curricula.  There  is  very 
good  synergy  between  these  two  models  at  this  point.]  From  this  viewpoint,  processes  can  be 
seen  as  the  glue  that  binds  the  organization,  its  functional  areas,  and  its  workers  together  in¬ 
to  a  single  entity  and  that  link  the  organization  to  its  global  environment. 

The  course  starts  by  considering  the  strategic  role  of  processes.  ...  While  strategic  advan¬ 
tage  may  be  transitory,  most  companies  need  efficient  processes  to  remain  competitive.  The 
course  then  considers  issues  of  organizational  transformation  and  the  relationship  between 
organizational  structures,  processes,  and  the  employee  roles.  Next,  students  learn  how  to  de¬ 
velop  process  maps  and  design  process  improvements.  The  impact  of  regulations  such  as 
Sarbanes-Oxley  and  Gramm-Leach-Bliley  on  the  controls  that  must  be  built  into  the  firm ’s 
processes  and  databases  are  considered  next.  [The  emphasis  on  process  and  practical  appli¬ 
cation  of  assurance  principles  is  very  close  to  the  focus  of  the  MSwA  and  would  allow  for  an 
easy  integration  of  content.  The  fact  that  the  MSwA  content  would  both  elaborate  and  better 
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focus  the  learning  in  this  area  makes  it  important  to  consider  an  immediate  integration  of 
content  from  these  two  areas.] 

3.5  MSwA  Content  Area  Five  -  System  Security  Assurance 
Analogous  MSIS  Content  Area:  MSIS2006.6  Policy  and  Strategy 
Prerequisites:  MSIS2006.1  and  MSIS2006.2 
Catalog  Description  MSIS2006.6: 

The  top  management,  strategic  perspective  for  aligning  competitive  strategy,  core  competen¬ 
cies,  and  information  systems.  The  development  and  implementation  of  policies  and  plans  to 
achieve  organizational  goals.  Defining  the  systems  that  support  the  operational,  administra¬ 
tive,  and  strategic  needs  of  the  organization,  its  business  units,  and  individual  employees. 
Approaches  to  managing  the  information  systems  function  in  organizations,  including  ex¬ 
amination  of  the  dual  challenges  of  effectively  controlling  the  use  of  well-established  infor¬ 
mation  technologies,  while  experimenting  with  selected  emerging  technologies.  Role  of  the 
CIO. 

MSIS  Objectives: 

Students  develop  an  understanding  of  the  strategic  use  of  information  technology  from  a 
business  perspective  at  the  enterprise  level.  They  are  expected  to  understand  the  internal 
management  of  information  systems  services  from  the  point  of  view  of  the  CIO  and  to  ex¬ 
amine  alternative  strategies  and  tactics  available  to  management  to  achieve  goals.  Working 
students  and  students  with  post-baccalaureate  experience  will  be  able  to  examine  the  current 
and  potential  impact  of  information  and  information  technology  on  all  aspects  of  their  posi¬ 
tion,  firm,  and  industry.  Students  without  experience  will  be  able  to  understand  the  strategic 
information  thrust  of  potential  employers. 

Detailed  Topic  List: 

•  Relationship  between  IS  and  the  business 

•  Aligning  IT  with  the  cored  [sic]  competencies  and  strategies  of  the  firm  and  assess  the 
impacts  on  organizational  competitive  position 

•  Translate  strategic  and  IT  objectives  into  operating  principles  for  IS  planning 

•  IS  planning  including  infrastructure  planning  and  budgeting 

•  IS  implementation 

•  Sourcing  vs.  insourcing 

•  Interorganizational  systems  and  electronic  commerce 

•  IS  personnel,  structure,  and  leadership 

•  Risk  management 

•  The  virtual  organization 

•  Implications  of  globalization. 

Discussion: 

Philosophy  underlying  selection  of  topics:  This  course  is  often  taught  as  a  case-based  course 
near  the  end  of  the  student ’s  MS  program.  By  that  time,  the  student  has  developed  a  broad 
perspective  on  IS  and  knows  about  it  at  a  detailed  level.  This  course,  together  with  the  Inte- 
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grated  Capstone  course  completes  the  managerial  portion  of  the  MSIS  program.  [The  addi¬ 
tion  of  a  specific  security  concentration  into  the  joint  Policy  and  Strategy/Capstone  arrange¬ 
ment  would  allow  information  students  to  obtain  a  specific  grounding  in  the  critical  area  of 
secure  software  assurance.  As  a  consequence,  the  contents  of  the  MSwA  System  Security 
Assurance  area  would  be  easy  to  produce  and  would  provide  an  extremely  valuable  area  of 
focus,  as  well  as  a  highly  marketable  specialization  for  MSIS  students.] 

3.6  MSwA  Content  Area  Six  -  System  Functionality  Assurance 
Analogous  MSIS  Content  Area:  None  identified 

3.7  MSwA  Content  Area  Seven  -  System  Operational  Assurance 
Analogous  MSIS  Content  Area:  None  identified 
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Appendix:  Incorporating  a  Software  Assurance  Focus  into  a 
Typical  Information  Systems  Master  of  Science  in  Software 
Management  (MSCIS)  Program 


The  current  Master  of  Science  in  Software  Engineering  Management  Program  at  the  University  of 
Detroit  Mercy  is  already  a  hybrid  of  two  disciplines.  Those  disciplines  are  embodied  in  the  rec¬ 
ommendations  of  the  AIS’s  MSIS  2006  model  for  graduate  infonnation  systems  programs  and  the 
process  areas  of  the  Software  Engineering  Body  of  Knowledge  (SWEBOK).  Therefore,  the  cur¬ 
rent  curriculum  can  be  easily  modified  to  capture  the  first  five  (Section  1)  core  body  of  know¬ 
ledge  areas  of  the  MSwA  reference  curriculum. 

Core  Courses 

CIS  5010  Introduction  to  Information  Systems  -  Operating  System  Concepts 

Directly  satisfies  MSwA  element  “Computing  Foundations”  as  well  as  prerequisite  requirements 
of  MSIS2006. 

CIS  5100  Object  Orientation  -  Threat  Modeling 

Directly  satisfies  MSwA  element  “Risk  Management”  and  some  aspects  of  “Assurance  Assess¬ 
ment”;  satisfies  MSIS  element  2006.2,  “Analysis  Modeling  and  Design.” 

CIS  5200  Secure  Specification 

Directly  satisfies  MSwA  element  “Assurance  Across  Life  Cycles”  as  well  as  some  aspects  of 
“Assurance  Management  and  Assurance  Assessment”;  satisfies  MSIS  element  2006.5,  “Project 
and  Change  Management.” 

CIS  5300  Secure  Software  Assurance 

Directly  satisfies  MSwA  element  “Assurance  Assessment”  as  well  as  some  aspects  of  “Assurance 
Management”;  satisfies  MSIS  element  2006.2,  “Analysis  Modeling  and  Design.” 

CIS  5400  Secure  Life  Cycle  Management 

Directly  satisfies  MSwA  element  “Assurance  Management”  as  well  as  some  aspects  of  “Assur¬ 
ance  Across  Life  Cycles”;  satisfies  MSIS  element  2006.3,  “Enterprise  Models,”  and  2006.6,  “Pol¬ 
icy  and  Strategy.” 

Additional  Elective  Courses  (5) 

CIS  5050  Project  Management 

Directly  satisfies  MSIS  2006.5  “Project  and  Change  Management.” 

CIS  5250  Secure  Software  Construction 

Directly  satisfies  MSwA  element  “System  Functionality  Assurance.” 
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CIS  5350  Metrics  and  Models  for  Software  Management 

Directly  Satisfies  MSwA  element  “Assurance  Assessment”;  satisfies  MSIS  element  2006.6, 
“Analysis  Modeling  and  Design.” 

CIS  5530  Human  Factors  in  IT  Security 

Directly  satisfies  MSIS  element  2006.9,  “Human  Computer  Interaction.” 

CIS  5540  Post-Release  Sustainment 

Directly  satisfies  MSwA  element  “System  Operational  Assurance.” 

CIS  5570  Network  Security  and  CIS  5590  Advanced  Network  Security 

Both  satisfy  MSIS  element  2006.3,  “Data  Communications  and  Networking.” 

CIS  5700  Information  Assurance  Principles 

Directly  satisfies  MSwA  element  “System  Security  Assurance”;  satisfies  MSIS  element  2006.8, 
“Implications  of  Digitization.” 

CIS  5580  System  Forensics,  CIS  5750  Information  Assurance  Technologies,  and  CIS  5790 
Information  Assurance  Processes 

Directly  satisfy  MSwA  element  “System  Security  Assurance”;  potentially  satisfies  MSwA  ele¬ 
ment  “System  Operational  Assurance”;  satisfies  MSIS  element  2006.8,  “Implications  of  Digitiza¬ 
tion.” 

CIS  5910  Information  Security  Audit 

Directly  satisfies  MSwA  element  “Assurance  Assessment  and  System  Security  Assurance”;  satis¬ 
fies  MSIS  element  2006.6,  “Analysis  Modeling  and  Design.” 
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